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IN THE CLAIMS : 

Claims 2-4, 7, 10-11, 13, 18-21, 25-26 have been amended. Claims 1, 17 and 27 have 
been cancelled herein. New Claims 3 1-50 have been introduced into the application. Please note 
that all claims currently pending and under consideration in the referenced application are shown 
below. Please enter these claims as amended. This listing of claims will replace all prior 
versions and listings of claims in the application. 

Listing of Claims : 

1. (Cancelled) 

2. (Currently amended) The system of claim 1 claim 23 wherein the public data 
network is the Internet. 

3. (Currently amended) The system of elaim-4- claim 23 wherein the secure data 
entry device is connected to the public data network via a personal computer. 

4. (Currently amended) The system of ektkn-4- claim 23 wherein the private data 
network is an inter-bank network used for the transferral of electronic transaction 
data. 

5. (Original) The system of claim 4 wherein the private data network is provided via 
a dedicated network operated for the sole purpose of conducting electronic financial 
transactions. 

6. (Original) The system of claim 4 wherein the private data network is a virtual 
private network operated for the purpose of conducting electronic financial 
transactions via a host of public data network. 
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7. (Currently amended) The system of claim 1 claim 23 wherein the secure data 
entry device further includes: a card reader for reading relevant information stored on 
the user's card; and a keypad to enable the user to enter data into the system. 

8. (Original) The system of claim 7 wherein the card reader is able to read one or 
both of ISO 7816 'smart card' or ISO 781 1 'mag stripe' type cards. 

9. (Canceled). 

10. (Currently amended) The system of claim 1 claim 23 w herein said identifying 
information includes one or more of: 

the Primary Account Number associated with the card; 
the expiry date of the card; and 

the user's Personal Identification Number associated with the card. 

1 1 . (Currently amended) The system of claim 1 claim 23 wherein the identifying 
information is transmitted using a standard transaction message format compliant to 
ISO 8583. 

12. (Original) The system of claim 1 1 wherein the ISO 8583 message used is one of 
an "0200' financial presentment message, and or an "01 04' authorization message. 

1 3 . (Currently amended) The system of claim 1 claim 23 wherein the gateway device 
also includes means for transmitting the approval response to the secure data entry 
device. 

14. (Original) The system of claim 13 wherein the secure data entry device further 
includes means for deriving from the approval response verifiable proof that the 
customer's identifying information has been authenticated by the card-issuing 
financial institution. 
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15. (Original) The system of claim 14 wherein said proof is an authentication data 
block, consisting of data computed in a secure manner from the approval sent from 
the card-issuing bank. 

16. (Original) The system of claim 15 wherein the data block is a whole or truncated 
encryption of the approval message derived using an encryption key stored securely 
within the secure data entry device. 

17. (Cancelled) 

18. (Currently amended) The system of claim 17 claim 23 wherein the replacement 
card number is transmitted to the secure data entry device over the public data 
network. 

19. (Currently amended) The system of claim 17 claim 23 wherein the replacement 
card number is generated dynamically for use in a single transaction. 

20. (Currently amended) The system of claim 17 claim 23 wherein the replacement 
card number is maintained and used for multiple transactions. 

21. (Currently amended) The system of claim 17 claim 23 wherein supplementary 
details of a transaction are also transmitted to the gateway device by the secure data 
entry device, and wherein said supplementary details include one or more of the 
transaction amount and a merchant identification. 

22. (Original) The system of claim 21 wherein said supplementary details are 
transmitted to the gateway device in the transaction message carrying the identifying 
information. 

23. (Previously presented) A system for the authentication by a card-issuing financial 
institution of identifying information of a card-holding user of a public data network, 
the system comprising: 
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a secure data entry device connected to the public data network; and 

a gateway device connected to the public data network and to a private data 
network used for transmitting messages between financial institutions; 

wherein the secure data entry device comprises means for the user to enter 
identifying information of a card issued by the financial institution, means for the user to 
enter the user's Personal Identification Number ("PIN"), means for encrypting the 
identifying information and PIN for secures transmission, and means for transmitting the 
encrypted identifying information and PIN in a secure manner via the data transmission 
output over the public data network to the gateway device; and 

wherein the gateway device includes means for transmitting the identifying 
information to the card-issuing financial institution and for receiving an approval 
response from the card-issuing financial institution over the private data network; and 

whereby the approval response provides authentication of the identifying 
information by the card-issuing financial institution; 

wherein the gateway device further includes means to generate a replacement card 
number upon receipt of the approval response from the card-issuing institution and 
wherein the Bank Identification Number of the replacement card number is selected such 
that the payment transaction is routed through the gateway device on the private data 
network before being sent to the card-issuing financial institution. 

24. (Previously presented) A system for the authentication by a card-issuing financial 
institution of identifying information of a card-holding user of a public data network, 
the system comprising: 

a secure data entry device connected to the public data network; and 
a gateway device connected to the public data network and to a private data 
network used for transmitting messages between financial institutions; 

wherein the secure data entry device comprises means for the user to enter 
identifying information of a card issued by the financial institution, means for the user to 
enter the user's Personal Identification Number ("PIN"), means for encrypting the 
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identifying information and PIN for secures transmission, and means for transmitting the 
encrypted identifying information and PIN in a secure manner via the data transmission 
output over the public data network to the gateway device; and 

wherein the gateway device includes means for transmitting the identifying 
information to the card-issuing financial institution and for receiving an approval 
response from the card-issuing financial institution over the private data network; 

whereby the approval response provides authentication of the identifying 
information by the card-issuing financial institution; 

wherein the gateway device further includes means to generate a replacement card 
number upon receipt of the approval response from the card-issuing institution and 

wherein the Bank Identification Number of the replacement card number is 
selected such that the payment transaction is directed over the private data network to the 
gateway device by identifying the gateway device as a card-issuing institution of the 
replacement card number. 

25. (Currently amended) The system of claim 17 claim 23 wherein the gateway 
device further includes: means for receiving payment transaction messages from the 
private data network; means for modifying received payment transaction messages; 
and means for transmitting said modified payment transaction messages to the card- 
issuing financial institution; whereby the gateway device is able to substitute actual 
card numbers for replacement card numbers before transmitting received payment 
transaction messages to the card-issuing financial institution. 

26. (Currently amended) The system of claim 17 claim 23 wherein the gateway 
device further includes a database of replacement card numbers including 
corresponding actual card numbers and supplementary transaction details. 

27. (Cancelled) 
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29. (Previously presented) The system for the authentication by a card-issuing 
financial institution of identifying information of a card-holding user of a public data 
network according to Claim 23 wherein said secure data entry device comprises a 
discrete device with a data transmission output connected to the public data network. 

30. (Previously presented) The system for the authentication by a card-issuing 
financial institution of identifying information of a card-holding user of a public data 
network according to Claim 24 wherein said secure data entry device comprises a 
discrete device with a data transmission output connected to the public data network. 

3 1 . (New) The system of claim 24 wherein the public data network is the Internet. 

32. (New) The system of claim 24 wherein the secure data entry device is connected 
to the public data network via a personal computer. 

33. (New) The system of claim 24 wherein the private data network is an inter-bank 
network used for the transferral of electronic transaction data. 

34. (New) The system of claim 32 wherein the private data network is provided via 
a dedicated network operated for the sole purpose of conducting electronic financial 
transactions. 

35. (New) The system of claim 32 wherein the private data network is a virtual 
private network operated for the purpose of conducting electronic financial 
transactions via a host of public data network. 
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36. (New) The system of claim 24 wherein the secure data entry device further 
includes: a card reader for reading relevant information stored on the user's card; and 
a keypad to enable the user to enter data into the system. 

37. (New) The system of claim 36 wherein the card reader is able to read one or both 
of ISO 7816 'smart card' or ISO 781 1 'mag stripe' type cards. 

38. (New) The system of claim 24 wherein said identifying information includes one 
or more of: 

the Primary Account Number associated with the card; 
the expiry date of the card; and 

the user's Personal Identification Number associated with the card. 

39. (New) The system of claim 24 wherein the identifying information is transmitted 
using a standard transaction message format compliant to ISO 8583. 

40. (New) The system of claim 39 wherein the ISO 8583 message used is one of an 
'0200' financial presentment message, and or an '0104^ authorization message. 

41. (New) The system of claim 24 wherein the gateway device also includes means 
for transmitting the approval response to the secure data entry device. 

42. (New) The system of claim 41 wherein the secure data entry device further 
includes means for deriving from the approval response verifiable proof that the 
customer's identifying information has been authenticated by the card-issuing 
financial institution. 

43. (New) The system of claim 42 wherein said proof is an authentication data block, 
consisting of data computed in a secure manner from the approval sent from the card- 
issuing bank. 
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44. (New) The system of claim 44 wherein the data block is a whole or truncated 
encryption of the approval message derived using an encryption key stored securely 
within the secure data entry device. 

45. (New) The system of claim 24 wherein the replacement card number is 
transmitted to the secure data entry device over the public data network. 

46. (New) The system of claim 24 wherein the replacement card number is generated 
dynamically for use in a single transaction. 

47. (New) The system of claim 24 wherein the replacement card number is 
maintained and used for multiple transactions. 

48. (New) The system of claim 24 wherein supplementary details of a transaction are 
also transmitted to the gateway device by the secure data entry device, and wherein 
said supplementary details include one or more of the transaction amount and a 
merchant identification. 

49. (New) The system of claim 48 wherein said supplementary details are transmitted 
to the gateway device in the transaction message carrying the identifying information. 

50. (New) The system of claim 24 wherein the Bank Identification Number of the 
replacement card number is selected such that the payment transaction is routed 
through the gateway device on the private data network before being sent to the card- 
issuing financial institution. 
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